-
Notifications
You must be signed in to change notification settings - Fork 2
/
Copy pathapp.js
71 lines (61 loc) · 2.28 KB
/
app.js
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
var express = require('express'),
path = require('path'),
favicon = require('serve-favicon'),
logger = require('morgan'),
cookieParser = require('cookie-parser'),
bodyParser = require('body-parser'),
db = require('./db'),
App = require('./models/App'),
PushServiceManager = require('./models/PushServiceManager'),
UserController = require('./controllers/UserController'),
PushController = require('./controllers/PushController'),
app = express();
// uncomment after placing your favicon in /public
//app.use(favicon(__dirname + '/public/favicon.ico'));
app.use(logger('dev'));
app.use(bodyParser.json());
app.use(bodyParser.urlencoded({ extended: false }));
app.use(cookieParser());
app.use(express.static(path.join(__dirname, 'public')));
var authenticationMiddleware = function(req, res, next) {
var appName = res.locals.app = req.get('X-App-Name'),
ip = req.get('X-Real-IP') || req.get('X-Forwarded-For') || req.ip || req.connection.remoteAdress;
// Check the app name
if (!appName)
return res.status(417).end();
PushServiceManager.get(appName, function(err, app) {
if (err)
return res.status(500).end();
console.log(appName, app.name);
// Is request ip allowed?
if (app && (appName == app.name) && (app.ips.indexOf(ip) > -1))
next();
else
res.status(401).end();
});
};
// Routes
app.get('/', authenticationMiddleware, function(req, res) {
res.json({
app: res.locals.app,
authenticated: true
});
});
app.put('/user/:userId', authenticationMiddleware, UserController.upsert);
app.post('/user', authenticationMiddleware, UserController.upsert);
app.delete('/user/:userId/device/:token', authenticationMiddleware, UserController.deleteDevice);
app.delete('/user/:userId', authenticationMiddleware, UserController.delete);
app.post('/message', authenticationMiddleware, PushController.send);
// catch 404 and forward to error handler
app.use(function(req, res, next) {
var err = new Error('Not Found');
err.status = 404;
next(err);
});
// Error handler
// No stacktraces leaked to user, just log the error.
app.use(function(err, req, res, next) {
console.log(err);
res.status(err.status || 500).end();
});
module.exports = app;